d2287456ccecd5e2a21b9a88af74c9a5c407c21e6aa72b85f65a6855e3711a45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2287456ccecd5e2a21b9a88af74c9a5c407c21e6aa72b85f65a6855e3711a45
Size

12KB
MD5

f6ab68a1d9e4ec9d1f15d31aab2ca590
SHA1

53293e969df4159c06d6001dca18f038f32541b2
SHA256

d2287456ccecd5e2a21b9a88af74c9a5c407c21e6aa72b85f65a6855e3711a45
SHA512

0dff031359039d507dcd5b3b3e2c07f9b02c748470234919a7d2e92ce291984616cfcb212885d78bd489e1fa60e2fa7d8c93b6976d9dcf795937064a5eac6f59
SSDEEP

192:sAxP9VsxGKr8UCJ6fElZlsl1PhFSBKfe6u6/hwPbAiAehQrD3KmrjDa1YgQ:LxuNrpCsfXFSBKfe6u6/aUiAbrjJPn

Score

N/A

Malware Config

Signatures

Files

d2287456ccecd5e2a21b9a88af74c9a5c407c21e6aa72b85f65a6855e3711a45
.dll windows x86

4ab64aebae0dd65a5d0dda9f9befd033

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IoDeleteDevice
IoDeleteSymbolicLink
RtlInitUnicodeString
IofCompleteRequest
IoCreateSymbolicLink
IoCreateDevice
ObfDereferenceObject
ExAllocatePoolWithTag
ZwQuerySystemInformation
MmUnlockPages
IoFreeMdl
MmUnmapLockedPages
MmMapLockedPagesSpecifyCache
MmProbeAndLockPages
IoAllocateMdl
_except_handler3

Sections

.text
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 130B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ